liatrio-labs/liatrio-dns
skills/liatrio-dns/SKILL.md
Provision DNS records for liatr.io subdomains in the liatrio/liatrio-external-dns repository. Use when adding, modifying, or removing DNS CNAME records, A records, or other Route53 records for liatr.io or k8s-ignite.com domains. Triggers on requests like 'add a domain', 'create a subdomain', 'point X.liatr.io to Y', or 'set up DNS for a new site'.
$ install --global
skillsauthnpx skillsauth add liatrio-labs/ai-prompts liatrio-dnsInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: May 8, 2026, 6:19 AM134.1s2 files scanned
SKILL.md
- name:
- liatrio-dns
- description:
- Provision DNS records for liatr.io subdomains in the liatrio/liatrio-external-dns repository. Use when adding, modifying, or removing DNS CNAME records, A records, or other Route53 records for liatr.io or k8s-ignite.com domains. Triggers on requests like 'add a domain', 'create a subdomain', 'point X.liatr.io to Y', or 'set up DNS for a new site'.
Liatrio DNS Provisioning
Provision DNS records for liatr.io subdomains in the liatrio/liatrio-external-dns Terraform/Terragrunt repository.
Repository Location
Clone URL: [email protected]:liatrio/liatrio-external-dns.git
If the repo is not already cloned locally, clone it to the user's working directory before proceeding.
Repository Structure
liatrio-external-dns/
├── dns/
│ ├── liatr_io_records.tf # All liatr.io DNS records (primary file to edit)
│ ├── k8s_ignite_com_records.tf # k8s-ignite.com DNS records
│ ├── zones.tf # Route53 hosted zones
│ ├── certificates.tf # ACM wildcard certificates
│ ├── redirects.tf # CloudFront redirect modules
│ ├── domains.tf # Registered domain imports
│ └── terragrunt.hcl # Terragrunt config
├── modules/
│ ├── cloudfront-redirect/ # Module for HTTP redirects via CloudFront
│ └── wildcard-acm-cert/ # Module for wildcard ACM certs with DNS validation
├── insights-liatrio-com/ # S3 + CloudFront for insights.liatrio.com
├── root.hcl # Shared Terragrunt config (S3 backend, provider)
└── shared.tfvars # Shared variables (region: us-east-1)
Record Types and Patterns
CNAME to GitHub Pages (most common)
For sites hosted on GitHub Pages under the liatrio org:
# <description>.liatr.io
resource "aws_route53_record" "<name>_liatr_io" {
zone_id = aws_route53_zone.liatr_io.zone_id
name = "<name>.liatr.io"
type = "CNAME"
ttl = 300
records = ["liatrio.github.io"]
}
- Resource name convention: replace hyphens with underscores, append
_liatr_io - For repos under
liatrio-labsorg, useliatrio-labs.github.ioinstead - For repos under
liatrio-clientsorg, useliatrio-clients.github.ioinstead
CNAME to External Service
For domains pointing to Vercel, Azure, or other external services:
resource "aws_route53_record" "<name>_liatr_io" {
zone_id = aws_route53_zone.liatr_io.zone_id
name = "<name>.liatr.io"
type = "CNAME"
ttl = 300
records = ["<target-domain>"]
}
A Record (GitHub Pages apex or similar)
For apex domains or GitHub Pages A records:
resource "aws_route53_record" "<name>_liatr_io" {
zone_id = aws_route53_zone.liatr_io.zone_id
name = "<name>.liatr.io"
type = "A"
ttl = 300
records = local.github_pages_ips
}
The local.github_pages_ips variable is defined at the top of liatr_io_records.tf.
CloudFront Redirect
To redirect a subdomain to another URL, add a module in dns/redirects.tf and A/AAAA alias records in dns/liatr_io_records.tf:
# In redirects.tf:
module "<name>_liatr_io_redirect" {
source = "../modules/cloudfront-redirect"
name = "<name>-liatr-io-redirect"
destination_url = "<target-url>"
origin_domain = "<name>.liatr.io"
certificate_arn = module.liatr_io_wildcard_cert.certificate_arn
tags = var.tags
}
# In liatr_io_records.tf:
resource "aws_route53_record" "<name>_liatr_io_redirect" {
zone_id = aws_route53_zone.liatr_io.zone_id
name = "<name>.liatr.io"
type = "A"
alias {
name = module.<name>_liatr_io_redirect.domain_name
zone_id = module.<name>_liatr_io_redirect.hosted_zone_id
evaluate_target_health = false
}
}
resource "aws_route53_record" "<name>_liatr_io_redirect_ipv6" {
zone_id = aws_route53_zone.liatr_io.zone_id
name = "<name>.liatr.io"
type = "AAAA"
alias {
name = module.<name>_liatr_io_redirect.domain_name
zone_id = module.<name>_liatr_io_redirect.hosted_zone_id
evaluate_target_health = false
}
}
NS Delegation
To delegate a subdomain to another DNS provider or AWS account:
resource "aws_route53_record" "<name>_liatr_io_ns" {
zone_id = aws_route53_zone.liatr_io.zone_id
name = "<name>.liatr.io"
type = "NS"
ttl = 300
records = ["ns1.example.com", "ns2.example.com", "ns3.example.com", "ns4.example.com"]
}
Workflow
- Create a branch following the naming convention:
add-<name>-liatr-io-cname(or similar descriptive name) - Add the DNS record to
dns/liatr_io_records.tf(or appropriate file) - Commit with message format:
chore: add CNAME for <name>.liatr.io - Push and create a PR — the
pr.yamlworkflow will runterragrunt planand comment the changes on the PR - After merge, the
apply.yamlworkflow runsterragrunt applyautomatically
Important Reminders
- For GitHub Pages sites, the target repo also needs a
CNAMEfile or custom domain configured in Settings > Pages - The hosted zone reference is
aws_route53_zone.liatr_io.zone_idforliatr.iosubdomains - The hosted zone reference is
aws_route53_zone.k8s_ignite_com.zone_idfork8s-ignite.comsubdomains - The
platform.liatr.iosubdomain has its own zone:aws_route53_zone.platform_liatr_io.zone_id - Wildcard ACM certs already exist for
liatr.ioandk8s-ignite.com(incertificates.tf) - Run
tofu fmton changed files before committing — CI checks formatting
Related Skills
liatrio-labs/browser-qa
development
VerifiedTrustedCommunity
Use when you need lightweight browser QA for a web page, local HTML file, or app: inspect console errors, broken assets, keyboard/focus behavior, viewport readability, and publish evidence-backed findings JSON through a local HTML report viewer.
2SKILL.mdUpdated May 29, 2026
liatrio-labs/uv-usage
development
VerifiedTrustedCommunity
Provides concise guidance for using uv (Python package manager), including project workflows, pip-compatible commands, Python version management, and PEP 723 inline script dependencies. Use when users mention uv, uv run, inline dependencies, PEP 723, or Python dependency/project management.
2SKILL.mdUpdated Apr 6, 2026
liatrio-labs/tilt-dev
development
VerifiedTrustedCommunity
Manage local development environments with Tilt. Use when working with projects that run services via Tilt (indicated by presence of Tiltfile), including checking service status, viewing logs, troubleshooting connectivity issues, or managing the Tilt stack. Essential for projects using Tiltfile with local_resource for orchestrating backend, frontend, and other services.
2SKILL.mdUpdated Apr 6, 2026
liatrio-labs/mastra-api
tools
VerifiedTrustedCommunity
Interact with Mastra development server API for debugging agents, viewing conversation threads, listing/inspecting tools and workflows, accessing observability data, and managing Mastra resources. Use when working with Mastra agents and need to inspect runtime state, debug agent errors, view thread history, see available tools/workflows, or access API endpoints at localhost:4111/api or similar ports.
2SKILL.mdUpdated Apr 6, 2026